Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a846d30b by Moritz Mühlenhoff at 2025-10-16T12:40:12+02:00
auto-nfu: Update Eclipse rule
- - - - -
2 changed files:
- data/CVE/list
- data/packages/nfu.yaml
Changes:
=====================================
data/CVE/list
=====================================
@@ -11,13 +11,13 @@ CVE-2025-62579 (ASDA-Soft Stack-based Buffer Overflow
Vulnerability)
CVE-2025-58778 (Multiple versions of RG-EST300 provided by Ruijie Networks
provide SSH ...)
NOT-FOR-US: Ruijie
CVE-2025-55091 (In NetX Duo before 6.4.4, the networking support module for
Eclipse Fo ...)
- TODO: check
+ NOT-FOR-US: Eclipse
CVE-2025-55090 (In NetX Duo before 6.4.4, the networking support module for
Eclipse Fo ...)
- TODO: check
+ NOT-FOR-US: Eclipse
CVE-2025-55089 (In FileX before 6.4.2, the file support module for Eclipse
Foundation ...)
- TODO: check
+ NOT-FOR-US: Eclipse
CVE-2025-55084 (In NetX Duo version before 6.4.4, the component of Eclipse
Foundation ...)
- TODO: check
+ NOT-FOR-US: Eclipse
CVE-2025-43313 (A logic issue was addressed with improved restrictions. This
issue is ...)
NOT-FOR-US: Apple
CVE-2025-43282 (A double free issue was addressed with improved memory
management. Thi ...)
@@ -156,11 +156,11 @@ CVE-2025-55670 (On BIG-IP Next CNF, BIG-IP Next SPK, and
BIG-IP Next for Kuberne
CVE-2025-55669 (When the BIG-IP Advanced WAF and ASM security policy and a
server-side ...)
NOT-FOR-US: F5
CVE-2025-55083 (In NetX Duo version before 6.4.4, the component of Eclipse
Foundation ...)
- TODO: check
+ NOT-FOR-US: Eclipse
CVE-2025-55082 (In NetX Duo version before 6.4.4, the component of Eclipse
Foundation ...)
- TODO: check
+ NOT-FOR-US: Eclipse
CVE-2025-55081 (In Eclipse Foundation NextX Duo before 6.4.4, a module of
ThreadX, the ...)
- TODO: check
+ NOT-FOR-US: Eclipse
CVE-2025-55036 (When BIG-IP SSL Orchestrator explicit forward proxy is
configured on a ...)
NOT-FOR-US: F5
CVE-2025-54858 (When a BIG-IP Advanced WAF or BIG-IP ASM Security Policy is
configured ...)
=====================================
data/packages/nfu.yaml
=====================================
@@ -337,6 +337,8 @@
- anyOf:
- product: Eclipse Cyclone DDS
- product: Eclipse Glassfish
+ - product: FileX
+ - product: NetX Duo
- product: OpenJ9
- product: ThreadX
- reason: Esri
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a846d30bec9fe2bd901c744af41e55f9fcb0420c
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a846d30bec9fe2bd901c744af41e55f9fcb0420c
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
